On January 28, attackers stole more than $80 million from Binance Smart Chain-based Qubit Finance.
Qubit Finance announced this attack on its official Twitter.
Addresses connected with the attack indicate that 206,809 BNB were stolen from Qubit’s QBridge protocol. According to security firm PeckShield, the stolen assets are worth more than $80 million.
The attacker called the QBridge deposit function on the ethereum network, which calls the deposit function QBridgeHandler.
QBridgeHandler should receive the WETH token, which is the original tokenAddress, and if the person who performed the tx does not have a WETH token, the transfer should not occur.
tokenAddress.safeTransferFrom(depositer, address(this), amount);
In the code above, tokenAddress is 0, so safeTransferFrom didn’t fail and the deposit function ended normally regardless of the amount value.
Additionally, tokenAddress was the WETH address before depositETH was added, but as depositETH is added, it is replaced with the zero address that is the tokenAddress of ETH.
In summary, the deposit function was a function that should not be used after depositETH was newly developed, but it remained in the contract.
DISCLAIMER: The Information on this website is provided as general market commentary and does not constitute investment advice. We encourage you to do your own research before investing.
Join CoinCu Telegram to keep track of news: https://t.me/coincunews
Follow CoinCu Youtube Channel | Follow CoinCu Facebook page
Hazel
CoinCu News
Qubit Finance Qubit Finance Qubit Finance
Upbit's planned listing includes DRIFT trading pairs for the Korean Won, Bitcoin, and Tether.
Bitcoin Spot ETF Inflows reach $1.376 billion on November 7, with BlackRock ETF IBIT seeing…
Detroit will become the largest U.S. city to accept crypto payments for taxes and fees…
Trump's transition team is considering Robinhood Chief Legal Officer Dan Gallagher for SEC chair, with…
Schneider Electric faced a Hellcat Ransomware attack demanding $125,000 in Monero, threatening to release 40GB…
Ethereum Foundation Report 2024 reveals asset reserves of $970.2M, with $788.7M in crypto (99.45% ETH).…
This website uses cookies.